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DETAILED ACTION 



1. 



The amendment of 14 February 2008 has been noted and made of record. 



2. 



Claims 1-45 have been presented for examination. 



Response to Arguments 



3. Applicant's arguments, see page 9, filed 14 February 2008, with respect to the rejections 
under 35 U.S.C. 1 12, 2°'* paragraph have been fully considered and are persuasive. The 35 
U.S.C. 1 12, 2°'* paragraph rejection of claims 22-37 has been withdrawn. 

4. Applicant's arguments with respect to the prior art rejections filed 14 February 2008 have 
been fully considered but they are not persuasive. 

5. In response to applicant's argument that the references fail to show certain features of 
applicant's invention, it is noted that the features upon which applicant relies, such as generating 
the updated first key from the offset, are not recited in the rejected independent claims. 
Although the claims are interpreted in light of the specification, limitations from the specification 
are not read into the claims. See In re Van Geuns, 988 F.2d 1 181, 26 USPQ2d 1057 (Fed. Cir. 
1993). Using the offset as a parameter in calculating the updated key appears in the several of 
the dependent claims, but not the independent claims argued by the Applicant's representative. 

6. The AppUcant argues that the Examiner has applied an inappropriate test for obviousness 
in 35 U.S.C. 103. The Examiner disagrees. KSR International Co. v. Tele/lex Inc. brought about 
the "obvious to try" test for determining nonobviousness. See KSR International Co. v. Teleflex 
Inc., 82 USPQ2d 1385 (U.S. 2007); see also MPEP § 2141.01(111). Since the Examiner was 
proper in his rejection, and the Applicant makes no other arguments other than the legitimacy of 
the rejection, the rejections under 35 U.S.C. 103 are maintained. 
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7. See further rejections set forth below. 

Claim Rejections - 35 USC § 102 

8. The text of those sections of Title 35, U.S. Code not included in this action can be found 
in a prior Office action. 

9. Claims 1-16 and 21-45 are rejected under 35 U.S.C. 102(b) as being anticipated by U.S. 
Patent No. 6,240,188 Bl to Dondeti et al, hereinafter Dondeti. 

10. As per claims 1 and 21, Dondeti teaches a method and system of managing keys in a key 
distribution system for a communications group, the key distribution system maintaining a tree 
of nodes including at least one leaf node that has a parent node, each node of the group being 
associated with a first key, the method comprising: 

updating the first keys of a first branch of nodes in the tree by allocating new first keys to 
each of the nodes in the branch (column 3, lines 47-63, i.e. updating keys on a branch when a 
member join or leaves); 

determining an offset (i.e. binary ID) for generating the updated first key of each node in 
the branch from a key of a previous node in the branch (column 3, lines 29-48, column 4, lines 
22-65, i.e. neighbors are responsible for distributing/updated binary IDs to new members); and 

broadcasting each of said offsets in an unencrypted form so that, given the updated first 
key associated with the first node of said branch, each updated first key of said branch of nodes 
can be calculated (column 6, lines 22-43, i.e. broadcasting membership updates). 

1 1 . Regarding claims 2 and 43, Dondeti teaches wherein the first key of each parent node in 
said free of nodes is generated from the first key of each of its child nodes by two one-way 
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functions (column 4, lines 7-51) and a mixing function (Figure 1 [block 34], column 4, lines 19- 
21, column 4, lines 61-65), the mixing function including the offset as a parameter (column 3, 
lines 29-48, column 4, lines 22-65). 

12. With regards to claims 3, 23, and 44, Dondeti teaches wherein the mixing function in an 
XOR function (column 4, lines 61-62). 

13. With regards to claims 4, 24, and 45, Dondeti teaches wherein each parent key is 
generated using the formula f(f (child key) XOR OFFSET) (igure 1 [block 34], column 4, lines 
19-21, column 4, lines 61-65), wherein OFFSET is the offset and f represents a one-way function 
(column 4, lines 7-51) and wherein child key is the first key of a child node of said parent node 
(column 4, lines 19-21, column 4, lines 61-65). 

14. Regarding claims 5, 26, and 39, Dondeti teaches wherein the communication group 
comprises at least one member that is associated with a leaf node of the tree of nodes (column 3, 
lines 19-28). 

15. With regards to claims 6 and 27, Dondeti teaches wherein information transferred to, 
from or between members of the communication group is encrypted using an application data 
encrj^tion key, the encryption key comprising a join field and a leave field, wherein each 
member of the group knows the join field of the encryption key (column 3, lines 34-40, column 
3, lines 58-63, column 6, lines 20-42). 
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16. Concerning claims 7, 28, and 40, Dondeti teaches wherein the join field of the encryption 
key is updated each time a member joins the group (column 3, lines 58-63, column 6, lines 20- 
42). 

17. Concerning claims 8 and 29, Dondeti teaches wherein the new member joins the group 
using the following method: 

the new user requests access to the group (column 3, lines 34-40); 

the new user is granted access to the group (column 3, lines 34-40); 

the new member is assigned a node at a new leaf node of the communication group 
(column 3, lines 29-47); 

the new member is sent all the information required to generate the first key of each node 
on a branch of nodes from the new leaf node to the root node (column 3, lines 29-47); and 

the join field of the application data key is updated (column 6, line 20 to column 8, line 

13). 

18. Concerning claims 9 and 30, Dondeti teaches the generation of a new node as the parent 
of both the new leaf node and a pre-existing node (Figure 5, column 5, lines 36-67, column 9, 
line 66 to column 10, line 11, column 10, lines 29-39). 
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19. Concerning claims 10,31, and 4 1 , Dondeti teaches wherein the updated join field is 
generated from the previous join field using a one-way function (column 4, lines 7-11, column 6, 
line 20 to column 8, line 13). 

20. Concerning claims 11,32, and 42, Dondeti teaches wherein a key update request is 
generated each time a member leaves the group, wherein the first keys of each node of the 
branch of nodes including both the node associated with the member that is leaving the group 
and the root node are the keys that are updated (column 3, lines 58-61, column 8, line 44-67). 

21 . Concerning claims 12 and 33, Dondeti discloses wherein a member leaves the group 
using the following method: 

an instruction to remove a member from the group is generated (column 8, line 55 to 

column 9, line 19); 

the parent node of the node associated with the leaving member is deleted (column 8, line 
55 to column 9, line 19); 

the sibling node of the node associated with the leaving member is promoted to the 
position occupied by the deleted node (column 8, line 55 to column 9, line 19); 

the first key of each node on the branch of nodes from the promoted node to the root node 
is updated (column 3, lines 47-63, column 4, lines 1-21); 

offset messages for generating the new first keys are broadcast to the group (column 6, 
lines 22-43, i.e. broadcasting membership updates); 
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remaining members of the communications group calculate the updated first key nodes of 
the tree (column 4, lines 22-65, column 5, lines 36-67). 

22. Concerning claims 13 and 34, Dondeti teaches wherein the instruction to remove a 
member from the group is generated by the member that is leaving the group (column 8, line 55 
to column 9, line 19). 

23. Concerning claims 14 and 35, Dondeti teaches that the instruction to remove a member 

from the group is generated by a key distribution server (column 1, lines 58-66, column 8, line 
55 to column 9, line 19). Evictions from a key distribution server are well-known and commonly 
practiced. 

24. Regarding claims 15 and 36, Dondeti teaches wherein the nodes are arranged in a 
hierarchical tree (column 3, lines 64-65). 

25. With regards to claims 16 and 37, Dondeti teaches wherein the nodes are arranged in a 
binary tree (column 3, lines 64-65). 

26. As per claim 22, Dondeti teaches a key distribution system for a communications group, 
the key distribution system comprising: 

a distribution server including: 
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means for maintaining a tree of nodes including at least one leaf node that has a parent 
node, each node being associated with a first key (Figures 1-4, 9, and associated descriptions); 

wherein the first key of each parent node in the tree is derived fi-om the first key of each 
of its child node by two one-way functions (column 4, lines 7-51) and a mixing function (Figure 
1 [block 34], column 4, lines 19-21, column 4, lines 61-65), the mixing function including an 
offset value as a parameter which is broadcast in an unencrypted form (column 3, lines 29-48, 
column 4, lines 22-65, column 6, lines 22-43). 

27. Regarding claim 25, Dondeti teaches means for updating the first keys of a first chain of 
nodes along a branch of the tree are updated by allocating new first keys to each of those nodes 
in response to a request to update the first keys of that chain of nodes (column 3, lines 47-63, i.e. 
updating keys on a branch when a member join or leaves); 

means for determining an offset for generating the updated first key of each member of 
the chain from the previous member of the chain (column 3, lines 29-48, column 4, lines 22-65, 
i.e. neighbors are responsible for distributing/updated binary IDs to new members); and 

means for broadcasting each of said offsets so that, given the updated first key associated 
with the first node of said chain of nodes, each updated first key on said chain of nodes can be 
calculated (colunm 6, lines 22-43, i.e. broadcasting membership updates). 

28. As per claim 38, Dondeti teaches key distribution system for a communications group, 
the key distribution system comprising: 
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an encryption key distribution server including means for maintaining a tree of nodes 
including a root node that has at least one child node, and at least one leaf node that has a parent 
node (Figures 1, 2, 3, and 4 [blocks 54], column 1, lines 58-66, coliimn 3, lines 19-28, column 8, 
line 55 to column 9, line 19), 

the distribution server including means for servicing a communication group comprising 
at least one member client device, wherein a served encryption key defined in a server memory 
device comprises a join field and a leave field, and wherein: 

each member client device of the group knows the join field of the encryption key 
(column 4, lines 7-11, column 6, line 20 to column 8, line 13); 

each node of the key distribution system is associated with a leave key (Figure 8, column 
8, lines 44-67); 

the leave field of the encryption key is derived fi-om the leave key of the root node 
(Figure 8, column 8, lines 44-67). 

Claim Rejections - 35 USC § 103 

29. The text of those sections of Title 35, U.S. Code not included in this action can be found 
in a prior Office action. 

30. Claims 17-20 are rejected under 35 U.S.C. 103(a) as being unpatentable over Dondeti. 

3 1 . Regarding claim 1 7, Dondenti does not teach retransmitting messages enabling, users to 
update keys in case the users have not received those messages. 

32. One of ordinary skill in the art could have tried to retransmit the messages to those users 
that did not receive the update at the time the invention was made, since it would provide a 
method for ensuring that all members of the group update their respective key. 
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33 . With regards to claim 1 8, Dondeti does not teach wherein the retransmitted messages are 
attached to application data packets. 

34. One of ordinary skill in the art could have tried to retransmit the messages attached to 
data packets at the time the invention was made, since it would minimize the amount of network 
traffic. 

35. With regards to claim 19, Dondeti teaches wherein the retransmitted messages contain a 
sequence number indicative of the position in the sequence of key updates (column 3, lines 29- 
48, column 4, lines 22-65, i.e. binary ID). 

36. Concerning claim 20, Dondeti teaches wherein the sequence number is cyclic (column 3, 
lines 29-48, column 4, lines 22-65, i.e. the binary ID is cyclical). 

Conclusion 

37. THIS ACTION IS MADE FINAL. AppUcant is reminded of the extension of time 
policy as set forth in 37 CFR 1.136(a). 

38. A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within TWO 
MONTHS of the mailing date of this final action and the advisory action is not mailed until after 
the end of the THREE-MONTH shortened statutory period, then the shortened statutory period 
will expire on the date the advisory action is mailed, and any extension fee pursuant to 37 

CFR 1 .136(a) will be calculated fi-om the mailing date of the advisory action. In no event. 
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however, will the statutory period for reply expire later than SIX MONTHS from the mailing 
date of this final action. 

39. Any inquiry concerning this communication or earlier communications fi-om the 
examiner should be directed to Christian LaForgia whose telephone number is (571)272-3792. 
The examiner can normally be reached on Monday thru Thursday 7-5. 

40. If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Kristine L. Kincaid can be reached on (571) 272-4063. The fax phone number for 
the organization where this application or proceeding is assigned is 571-273-8300. 

41 . Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained fi-om either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-fi"ee). If you would 
like assistance from a USPTO Customer Service Representative or access to the automated 
information system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 

/Christian LaForgia/ 

Primary Examiner, Art Unit 2139 

clf 



